|
 |
0d5c10 |
From 8f2e794f58b75311153609cd57c56dfa104f3ef1 Mon Sep 17 00:00:00 2001
|
|
|
0d5c10 |
From: Gabriel Becker <ggasparb@redhat.com>
|
|
|
0d5c10 |
Date: Wed, 17 Apr 2019 11:42:05 +0200
|
|
|
0d5c10 |
Subject: [PATCH] Mark service rules as machine only.
|
|
|
0d5c10 |
|
|
|
0d5c10 |
---
|
|
|
0d5c10 |
.../disable_avahi_group/service_avahi-daemon_disabled/rule.yml | 2 ++
|
|
|
0d5c10 |
linux_os/guide/services/base/service_abrtd_disabled/rule.yml | 2 ++
|
|
|
0d5c10 |
linux_os/guide/services/base/service_acpid_disabled/rule.yml | 2 ++
|
|
|
0d5c10 |
.../guide/services/base/service_certmonger_disabled/rule.yml | 2 ++
|
|
|
0d5c10 |
linux_os/guide/services/base/service_cgconfig_disabled/rule.yml | 2 ++
|
|
|
0d5c10 |
linux_os/guide/services/base/service_cgred_disabled/rule.yml | 2 ++
|
|
|
0d5c10 |
linux_os/guide/services/base/service_cpupower_disabled/rule.yml | 2 ++
|
|
|
0d5c10 |
linux_os/guide/services/base/service_cpuspeed_disabled/rule.yml | 2 ++
|
|
|
0d5c10 |
.../guide/services/base/service_haldaemon_disabled/rule.yml | 2 ++
|
|
|
0d5c10 |
linux_os/guide/services/base/service_kdump_disabled/rule.yml | 2 ++
|
|
|
0d5c10 |
.../guide/services/base/service_mdmonitor_disabled/rule.yml | 2 ++
|
|
|
0d5c10 |
.../guide/services/base/service_messagebus_disabled/rule.yml | 2 ++
|
|
|
0d5c10 |
.../guide/services/base/service_netconsole_disabled/rule.yml | 2 ++
|
|
|
0d5c10 |
linux_os/guide/services/base/service_ntpdate_disabled/rule.yml | 2 ++
|
|
|
0d5c10 |
linux_os/guide/services/base/service_oddjobd_disabled/rule.yml | 2 ++
|
|
|
0d5c10 |
.../guide/services/base/service_portreserve_disabled/rule.yml | 2 ++
|
|
|
0d5c10 |
linux_os/guide/services/base/service_psacct_enabled/rule.yml | 2 ++
|
|
|
0d5c10 |
linux_os/guide/services/base/service_qpidd_disabled/rule.yml | 2 ++
|
|
|
0d5c10 |
.../guide/services/base/service_quota_nld_disabled/rule.yml | 2 ++
|
|
|
0d5c10 |
linux_os/guide/services/base/service_rdisc_disabled/rule.yml | 2 ++
|
|
|
0d5c10 |
linux_os/guide/services/base/service_rhnsd_disabled/rule.yml | 2 ++
|
|
|
0d5c10 |
.../guide/services/base/service_rhsmcertd_disabled/rule.yml | 2 ++
|
|
|
0d5c10 |
.../guide/services/base/service_saslauthd_disabled/rule.yml | 2 ++
|
|
|
0d5c10 |
linux_os/guide/services/base/service_smartd_disabled/rule.yml | 2 ++
|
|
|
0d5c10 |
linux_os/guide/services/base/service_sysstat_disabled/rule.yml | 2 ++
|
|
|
0d5c10 |
.../guide/services/cron_and_at/service_atd_disabled/rule.yml | 2 ++
|
|
|
0d5c10 |
.../dhcp/disabling_dhcp_server/service_dhcpd_disabled/rule.yml | 2 ++
|
|
|
0d5c10 |
.../dns/disabling_dns_server/service_named_disabled/rule.yml | 2 ++
|
|
|
0d5c10 |
.../ftp/disabling_vsftpd/service_vsftpd_disabled/rule.yml | 2 ++
|
|
|
0d5c10 |
.../http/disabling_httpd/service_httpd_disabled/rule.yml | 2 ++
|
|
|
0d5c10 |
.../imap/disabling_dovecot/service_dovecot_disabled/rule.yml | 2 ++
|
|
|
0d5c10 |
.../disabling_nfs_services/service_rpcbind_disabled/rule.yml | 2 ++
|
|
|
0d5c10 |
.../disabling_nfsd/service_nfs_disabled/rule.yml | 2 ++
|
|
|
0d5c10 |
.../disabling_nfsd/service_rpcsvcgssd_disabled/rule.yml | 2 ++
|
|
|
0d5c10 |
.../obsolete/inetd_and_xinetd/service_xinetd_disabled/rule.yml | 2 ++
|
|
|
0d5c10 |
.../services/obsolete/nis/service_ypbind_disabled/rule.yml | 2 ++
|
|
|
0d5c10 |
.../obsolete/r_services/service_rexec_disabled/rule.yml | 2 ++
|
|
|
0d5c10 |
.../obsolete/r_services/service_rlogin_disabled/rule.yml | 2 ++
|
|
|
0d5c10 |
.../services/obsolete/r_services/service_rsh_disabled/rule.yml | 2 ++
|
|
|
0d5c10 |
.../services/obsolete/telnet/service_telnet_disabled/rule.yml | 2 ++
|
|
|
0d5c10 |
.../guide/services/obsolete/tftp/service_tftp_disabled/rule.yml | 2 ++
|
|
|
0d5c10 |
linux_os/guide/services/printing/service_cups_disabled/rule.yml | 2 ++
|
|
|
0d5c10 |
.../proxy/disabling_squid/service_squid_disabled/rule.yml | 2 ++
|
|
|
0d5c10 |
.../routing/disabling_quagga/service_zebra_disabled/rule.yml | 2 ++
|
|
|
0d5c10 |
.../services/smb/disabling_samba/service_smb_disabled/rule.yml | 2 ++
|
|
|
0d5c10 |
.../snmp/disabling_snmp_service/service_snmpd_disabled/rule.yml | 2 ++
|
|
|
0d5c10 |
.../wireless_software/service_bluetooth_disabled/rule.yml | 2 ++
|
|
|
0d5c10 |
.../permissions/mounting/service_autofs_disabled/rule.yml | 2 ++
|
|
|
0d5c10 |
48 files changed, 96 insertions(+)
|
|
|
0d5c10 |
|
|
|
0d5c10 |
diff --git a/linux_os/guide/services/avahi/disable_avahi_group/service_avahi-daemon_disabled/rule.yml b/linux_os/guide/services/avahi/disable_avahi_group/service_avahi-daemon_disabled/rule.yml
|
|
|
0d5c10 |
index 43f81254ac..40b88f8c36 100644
|
|
|
0d5c10 |
--- a/linux_os/guide/services/avahi/disable_avahi_group/service_avahi-daemon_disabled/rule.yml
|
|
|
0d5c10 |
+++ b/linux_os/guide/services/avahi/disable_avahi_group/service_avahi-daemon_disabled/rule.yml
|
|
|
0d5c10 |
@@ -32,3 +32,5 @@ references:
|
|
|
0d5c10 |
cis-csc: 11,14,3,9
|
|
|
0d5c10 |
|
|
|
0d5c10 |
ocil: '{{{ ocil_service_disabled(service="avahi-daemon") }}}'
|
|
|
0d5c10 |
+
|
|
|
0d5c10 |
+platform: machine
|
|
|
0d5c10 |
diff --git a/linux_os/guide/services/base/service_abrtd_disabled/rule.yml b/linux_os/guide/services/base/service_abrtd_disabled/rule.yml
|
|
|
0d5c10 |
index d3f4547161..df51ab91b7 100644
|
|
|
0d5c10 |
--- a/linux_os/guide/services/base/service_abrtd_disabled/rule.yml
|
|
|
0d5c10 |
+++ b/linux_os/guide/services/base/service_abrtd_disabled/rule.yml
|
|
|
0d5c10 |
@@ -37,3 +37,5 @@ references:
|
|
|
0d5c10 |
cis-csc: 11,12,14,15,3,8,9
|
|
|
0d5c10 |
|
|
|
0d5c10 |
ocil: '{{{ ocil_service_disabled(service="abrtd") }}}'
|
|
|
0d5c10 |
+
|
|
|
0d5c10 |
+platform: machine
|
|
|
0d5c10 |
diff --git a/linux_os/guide/services/base/service_acpid_disabled/rule.yml b/linux_os/guide/services/base/service_acpid_disabled/rule.yml
|
|
|
0d5c10 |
index 1cde23c55b..e28d36139e 100644
|
|
|
0d5c10 |
--- a/linux_os/guide/services/base/service_acpid_disabled/rule.yml
|
|
|
0d5c10 |
+++ b/linux_os/guide/services/base/service_acpid_disabled/rule.yml
|
|
|
0d5c10 |
@@ -32,3 +32,5 @@ references:
|
|
|
0d5c10 |
cis-csc: 11,14,3,9
|
|
|
0d5c10 |
|
|
|
0d5c10 |
ocil: '{{{ ocil_service_disabled(service="acpid") }}}'
|
|
|
0d5c10 |
+
|
|
|
0d5c10 |
+platform: machine
|
|
|
0d5c10 |
diff --git a/linux_os/guide/services/base/service_certmonger_disabled/rule.yml b/linux_os/guide/services/base/service_certmonger_disabled/rule.yml
|
|
|
0d5c10 |
index c8b9d7ecf8..37f67ac757 100644
|
|
|
0d5c10 |
--- a/linux_os/guide/services/base/service_certmonger_disabled/rule.yml
|
|
|
0d5c10 |
+++ b/linux_os/guide/services/base/service_certmonger_disabled/rule.yml
|
|
|
0d5c10 |
@@ -32,3 +32,5 @@ references:
|
|
|
0d5c10 |
cis-csc: 11,14,3,9
|
|
|
0d5c10 |
|
|
|
0d5c10 |
ocil: '{{{ ocil_service_disabled(service="certmonger") }}}'
|
|
|
0d5c10 |
+
|
|
|
0d5c10 |
+platform: machine
|
|
|
0d5c10 |
diff --git a/linux_os/guide/services/base/service_cgconfig_disabled/rule.yml b/linux_os/guide/services/base/service_cgconfig_disabled/rule.yml
|
|
|
0d5c10 |
index fc88b03f05..74592ec803 100644
|
|
|
0d5c10 |
--- a/linux_os/guide/services/base/service_cgconfig_disabled/rule.yml
|
|
|
0d5c10 |
+++ b/linux_os/guide/services/base/service_cgconfig_disabled/rule.yml
|
|
|
0d5c10 |
@@ -30,3 +30,5 @@ references:
|
|
|
0d5c10 |
cis-csc: 11,14,3,9
|
|
|
0d5c10 |
|
|
|
0d5c10 |
ocil: '{{{ ocil_service_disabled(service="cgconfig") }}}'
|
|
|
0d5c10 |
+
|
|
|
0d5c10 |
+platform: machine
|
|
|
0d5c10 |
diff --git a/linux_os/guide/services/base/service_cgred_disabled/rule.yml b/linux_os/guide/services/base/service_cgred_disabled/rule.yml
|
|
|
0d5c10 |
index b7bc04cb3c..95136a34aa 100644
|
|
|
0d5c10 |
--- a/linux_os/guide/services/base/service_cgred_disabled/rule.yml
|
|
|
0d5c10 |
+++ b/linux_os/guide/services/base/service_cgred_disabled/rule.yml
|
|
|
0d5c10 |
@@ -29,3 +29,5 @@ references:
|
|
|
0d5c10 |
cis-csc: 11,14,3,9
|
|
|
0d5c10 |
|
|
|
0d5c10 |
ocil: '{{{ ocil_service_disabled(service="cgred") }}}'
|
|
|
0d5c10 |
+
|
|
|
0d5c10 |
+platform: machine
|
|
|
0d5c10 |
diff --git a/linux_os/guide/services/base/service_cpupower_disabled/rule.yml b/linux_os/guide/services/base/service_cpupower_disabled/rule.yml
|
|
|
0d5c10 |
index dd6dd4572e..2ceef1df38 100644
|
|
|
0d5c10 |
--- a/linux_os/guide/services/base/service_cpupower_disabled/rule.yml
|
|
|
0d5c10 |
+++ b/linux_os/guide/services/base/service_cpupower_disabled/rule.yml
|
|
|
0d5c10 |
@@ -30,3 +30,5 @@ references:
|
|
|
0d5c10 |
cis-csc: 11,14,3,9
|
|
|
0d5c10 |
|
|
|
0d5c10 |
ocil: '{{{ ocil_service_disabled(service="cpupower") }}}'
|
|
|
0d5c10 |
+
|
|
|
0d5c10 |
+platform: machine
|
|
|
0d5c10 |
diff --git a/linux_os/guide/services/base/service_cpuspeed_disabled/rule.yml b/linux_os/guide/services/base/service_cpuspeed_disabled/rule.yml
|
|
|
0d5c10 |
index fed0d57a25..24ad5469db 100644
|
|
|
0d5c10 |
--- a/linux_os/guide/services/base/service_cpuspeed_disabled/rule.yml
|
|
|
0d5c10 |
+++ b/linux_os/guide/services/base/service_cpuspeed_disabled/rule.yml
|
|
|
0d5c10 |
@@ -30,3 +30,5 @@ references:
|
|
|
0d5c10 |
cis-csc: 11,14,3,9
|
|
|
0d5c10 |
|
|
|
0d5c10 |
ocil: '{{{ ocil_service_disabled(service="cpuspeed") }}}'
|
|
|
0d5c10 |
+
|
|
|
0d5c10 |
+platform: machine
|
|
|
0d5c10 |
diff --git a/linux_os/guide/services/base/service_haldaemon_disabled/rule.yml b/linux_os/guide/services/base/service_haldaemon_disabled/rule.yml
|
|
|
0d5c10 |
index 9ffe62f2fb..1f9debf286 100644
|
|
|
0d5c10 |
--- a/linux_os/guide/services/base/service_haldaemon_disabled/rule.yml
|
|
|
0d5c10 |
+++ b/linux_os/guide/services/base/service_haldaemon_disabled/rule.yml
|
|
|
0d5c10 |
@@ -31,3 +31,5 @@ references:
|
|
|
0d5c10 |
cis-csc: 11,14,3,9
|
|
|
0d5c10 |
|
|
|
0d5c10 |
ocil: '{{{ ocil_service_disabled(service="haldaemon") }}}'
|
|
|
0d5c10 |
+
|
|
|
0d5c10 |
+platform: machine
|
|
|
0d5c10 |
diff --git a/linux_os/guide/services/base/service_kdump_disabled/rule.yml b/linux_os/guide/services/base/service_kdump_disabled/rule.yml
|
|
|
0d5c10 |
index 0dc8bcd117..d3aa88b0a0 100644
|
|
|
0d5c10 |
--- a/linux_os/guide/services/base/service_kdump_disabled/rule.yml
|
|
|
0d5c10 |
+++ b/linux_os/guide/services/base/service_kdump_disabled/rule.yml
|
|
|
0d5c10 |
@@ -38,3 +38,5 @@ references:
|
|
|
0d5c10 |
cis-csc: 11,12,14,15,3,8,9
|
|
|
0d5c10 |
|
|
|
0d5c10 |
ocil: '{{{ ocil_service_disabled(service="kdump") }}}'
|
|
|
0d5c10 |
+
|
|
|
0d5c10 |
+platform: machine
|
|
|
0d5c10 |
diff --git a/linux_os/guide/services/base/service_mdmonitor_disabled/rule.yml b/linux_os/guide/services/base/service_mdmonitor_disabled/rule.yml
|
|
|
0d5c10 |
index 7c3cf3ce54..e6e43136be 100644
|
|
|
0d5c10 |
--- a/linux_os/guide/services/base/service_mdmonitor_disabled/rule.yml
|
|
|
0d5c10 |
+++ b/linux_os/guide/services/base/service_mdmonitor_disabled/rule.yml
|
|
|
0d5c10 |
@@ -29,3 +29,5 @@ references:
|
|
|
0d5c10 |
cis-csc: 11,14,3,9
|
|
|
0d5c10 |
|
|
|
0d5c10 |
ocil: '{{{ ocil_service_disabled(service="mdmonitor") }}}'
|
|
|
0d5c10 |
+
|
|
|
0d5c10 |
+platform: machine
|
|
|
0d5c10 |
diff --git a/linux_os/guide/services/base/service_messagebus_disabled/rule.yml b/linux_os/guide/services/base/service_messagebus_disabled/rule.yml
|
|
|
0d5c10 |
index 5935ac3d05..2de1412908 100644
|
|
|
0d5c10 |
--- a/linux_os/guide/services/base/service_messagebus_disabled/rule.yml
|
|
|
0d5c10 |
+++ b/linux_os/guide/services/base/service_messagebus_disabled/rule.yml
|
|
|
0d5c10 |
@@ -33,3 +33,5 @@ references:
|
|
|
0d5c10 |
cis-csc: 11,14,3,9
|
|
|
0d5c10 |
|
|
|
0d5c10 |
ocil: '{{{ ocil_service_disabled(service="messagebus") }}}'
|
|
|
0d5c10 |
+
|
|
|
0d5c10 |
+platform: machine
|
|
|
0d5c10 |
diff --git a/linux_os/guide/services/base/service_netconsole_disabled/rule.yml b/linux_os/guide/services/base/service_netconsole_disabled/rule.yml
|
|
|
0d5c10 |
index 4579994ffa..db75a5b409 100644
|
|
|
0d5c10 |
--- a/linux_os/guide/services/base/service_netconsole_disabled/rule.yml
|
|
|
0d5c10 |
+++ b/linux_os/guide/services/base/service_netconsole_disabled/rule.yml
|
|
|
0d5c10 |
@@ -34,3 +34,5 @@ references:
|
|
|
0d5c10 |
cis-csc: 11,12,14,15,3,8,9
|
|
|
0d5c10 |
|
|
|
0d5c10 |
ocil: '{{{ ocil_service_disabled(service="netconsole") }}}'
|
|
|
0d5c10 |
+
|
|
|
0d5c10 |
+platform: machine
|
|
|
0d5c10 |
diff --git a/linux_os/guide/services/base/service_ntpdate_disabled/rule.yml b/linux_os/guide/services/base/service_ntpdate_disabled/rule.yml
|
|
|
0d5c10 |
index 86b0faa459..1a20f8f3e0 100644
|
|
|
0d5c10 |
--- a/linux_os/guide/services/base/service_ntpdate_disabled/rule.yml
|
|
|
0d5c10 |
+++ b/linux_os/guide/services/base/service_ntpdate_disabled/rule.yml
|
|
|
0d5c10 |
@@ -38,3 +38,5 @@ references:
|
|
|
0d5c10 |
cis-csc: 11,12,14,15,3,8,9
|
|
|
0d5c10 |
|
|
|
0d5c10 |
ocil: '{{{ ocil_service_disabled(service="ntpdate") }}}'
|
|
|
0d5c10 |
+
|
|
|
0d5c10 |
+platform: machine
|
|
|
0d5c10 |
diff --git a/linux_os/guide/services/base/service_oddjobd_disabled/rule.yml b/linux_os/guide/services/base/service_oddjobd_disabled/rule.yml
|
|
|
0d5c10 |
index bc7087f0be..68a3f5f2ab 100644
|
|
|
0d5c10 |
--- a/linux_os/guide/services/base/service_oddjobd_disabled/rule.yml
|
|
|
0d5c10 |
+++ b/linux_os/guide/services/base/service_oddjobd_disabled/rule.yml
|
|
|
0d5c10 |
@@ -37,3 +37,5 @@ references:
|
|
|
0d5c10 |
cis-csc: 11,14,3,9
|
|
|
0d5c10 |
|
|
|
0d5c10 |
ocil: '{{{ ocil_service_disabled(service="oddjobd") }}}'
|
|
|
0d5c10 |
+
|
|
|
0d5c10 |
+platform: machine
|
|
|
0d5c10 |
diff --git a/linux_os/guide/services/base/service_portreserve_disabled/rule.yml b/linux_os/guide/services/base/service_portreserve_disabled/rule.yml
|
|
|
0d5c10 |
index 64cab85593..2238268d3d 100644
|
|
|
0d5c10 |
--- a/linux_os/guide/services/base/service_portreserve_disabled/rule.yml
|
|
|
0d5c10 |
+++ b/linux_os/guide/services/base/service_portreserve_disabled/rule.yml
|
|
|
0d5c10 |
@@ -31,3 +31,5 @@ references:
|
|
|
0d5c10 |
cis-csc: 11,12,14,15,3,8,9
|
|
|
0d5c10 |
|
|
|
0d5c10 |
ocil: '{{{ ocil_service_disabled(service="portreserve") }}}'
|
|
|
0d5c10 |
+
|
|
|
0d5c10 |
+platform: machine
|
|
|
0d5c10 |
diff --git a/linux_os/guide/services/base/service_psacct_enabled/rule.yml b/linux_os/guide/services/base/service_psacct_enabled/rule.yml
|
|
|
0d5c10 |
index 4dc88a4176..b53bf84469 100644
|
|
|
0d5c10 |
--- a/linux_os/guide/services/base/service_psacct_enabled/rule.yml
|
|
|
0d5c10 |
+++ b/linux_os/guide/services/base/service_psacct_enabled/rule.yml
|
|
|
0d5c10 |
@@ -32,3 +32,5 @@ references:
|
|
|
0d5c10 |
cis-csc: 1,11,12,13,14,15,16,2,3,5,6,7,8,9
|
|
|
0d5c10 |
|
|
|
0d5c10 |
ocil: '{{{ ocil_service_disabled(service="psacct") }}}'
|
|
|
0d5c10 |
+
|
|
|
0d5c10 |
+platform: machine
|
|
|
0d5c10 |
diff --git a/linux_os/guide/services/base/service_qpidd_disabled/rule.yml b/linux_os/guide/services/base/service_qpidd_disabled/rule.yml
|
|
|
0d5c10 |
index b31327d2d0..21e3468237 100644
|
|
|
0d5c10 |
--- a/linux_os/guide/services/base/service_qpidd_disabled/rule.yml
|
|
|
0d5c10 |
+++ b/linux_os/guide/services/base/service_qpidd_disabled/rule.yml
|
|
|
0d5c10 |
@@ -38,3 +38,5 @@ references:
|
|
|
0d5c10 |
cis-csc: 11,12,14,15,3,8,9
|
|
|
0d5c10 |
|
|
|
0d5c10 |
ocil: '{{{ ocil_service_disabled(service="qpidd") }}}'
|
|
|
0d5c10 |
+
|
|
|
0d5c10 |
+platform: machine
|
|
|
0d5c10 |
diff --git a/linux_os/guide/services/base/service_quota_nld_disabled/rule.yml b/linux_os/guide/services/base/service_quota_nld_disabled/rule.yml
|
|
|
0d5c10 |
index b6352e831a..78242b5c7b 100644
|
|
|
0d5c10 |
--- a/linux_os/guide/services/base/service_quota_nld_disabled/rule.yml
|
|
|
0d5c10 |
+++ b/linux_os/guide/services/base/service_quota_nld_disabled/rule.yml
|
|
|
0d5c10 |
@@ -35,3 +35,5 @@ references:
|
|
|
0d5c10 |
cis-csc: 11,14,3,9
|
|
|
0d5c10 |
|
|
|
0d5c10 |
ocil: '{{{ ocil_service_disabled(service="quota_nld") }}}'
|
|
|
0d5c10 |
+
|
|
|
0d5c10 |
+platform: machine
|
|
|
0d5c10 |
diff --git a/linux_os/guide/services/base/service_rdisc_disabled/rule.yml b/linux_os/guide/services/base/service_rdisc_disabled/rule.yml
|
|
|
0d5c10 |
index 9fcc4ba207..8265d182ef 100644
|
|
|
0d5c10 |
--- a/linux_os/guide/services/base/service_rdisc_disabled/rule.yml
|
|
|
0d5c10 |
+++ b/linux_os/guide/services/base/service_rdisc_disabled/rule.yml
|
|
|
0d5c10 |
@@ -37,3 +37,5 @@ references:
|
|
|
0d5c10 |
cis-csc: 1,11,12,13,14,15,16,18,3,4,6,8,9
|
|
|
0d5c10 |
|
|
|
0d5c10 |
ocil: '{{{ ocil_service_disabled(service="rdisc") }}}'
|
|
|
0d5c10 |
+
|
|
|
0d5c10 |
+platform: machine
|
|
|
0d5c10 |
diff --git a/linux_os/guide/services/base/service_rhnsd_disabled/rule.yml b/linux_os/guide/services/base/service_rhnsd_disabled/rule.yml
|
|
|
0d5c10 |
index 14b0ab18e0..3bf89d899f 100644
|
|
|
0d5c10 |
--- a/linux_os/guide/services/base/service_rhnsd_disabled/rule.yml
|
|
|
0d5c10 |
+++ b/linux_os/guide/services/base/service_rhnsd_disabled/rule.yml
|
|
|
0d5c10 |
@@ -37,3 +37,5 @@ references:
|
|
|
0d5c10 |
cis-csc: 11,12,14,15,3,8,9
|
|
|
0d5c10 |
|
|
|
0d5c10 |
ocil: '{{{ ocil_service_disabled(service="rhnsd") }}}'
|
|
|
0d5c10 |
+
|
|
|
0d5c10 |
+platform: machine
|
|
|
0d5c10 |
diff --git a/linux_os/guide/services/base/service_rhsmcertd_disabled/rule.yml b/linux_os/guide/services/base/service_rhsmcertd_disabled/rule.yml
|
|
|
0d5c10 |
index 92ed4fed4d..a4d11dba3c 100644
|
|
|
0d5c10 |
--- a/linux_os/guide/services/base/service_rhsmcertd_disabled/rule.yml
|
|
|
0d5c10 |
+++ b/linux_os/guide/services/base/service_rhsmcertd_disabled/rule.yml
|
|
|
0d5c10 |
@@ -33,3 +33,5 @@ references:
|
|
|
0d5c10 |
cis-csc: 11,14,3,9
|
|
|
0d5c10 |
|
|
|
0d5c10 |
ocil: '{{{ ocil_service_disabled(service="rhsmcertd") }}}'
|
|
|
0d5c10 |
+
|
|
|
0d5c10 |
+platform: machine
|
|
|
0d5c10 |
diff --git a/linux_os/guide/services/base/service_saslauthd_disabled/rule.yml b/linux_os/guide/services/base/service_saslauthd_disabled/rule.yml
|
|
|
0d5c10 |
index 367530f511..53254f294d 100644
|
|
|
0d5c10 |
--- a/linux_os/guide/services/base/service_saslauthd_disabled/rule.yml
|
|
|
0d5c10 |
+++ b/linux_os/guide/services/base/service_saslauthd_disabled/rule.yml
|
|
|
0d5c10 |
@@ -34,3 +34,5 @@ references:
|
|
|
0d5c10 |
cis-csc: 11,12,14,15,3,8,9
|
|
|
0d5c10 |
|
|
|
0d5c10 |
ocil: '{{{ ocil_service_disabled(service="saslauthd") }}}'
|
|
|
0d5c10 |
+
|
|
|
0d5c10 |
+platform: machine
|
|
|
0d5c10 |
diff --git a/linux_os/guide/services/base/service_smartd_disabled/rule.yml b/linux_os/guide/services/base/service_smartd_disabled/rule.yml
|
|
|
0d5c10 |
index 9c4345f56f..8c12d2bfb7 100644
|
|
|
0d5c10 |
--- a/linux_os/guide/services/base/service_smartd_disabled/rule.yml
|
|
|
0d5c10 |
+++ b/linux_os/guide/services/base/service_smartd_disabled/rule.yml
|
|
|
0d5c10 |
@@ -32,3 +32,5 @@ references:
|
|
|
0d5c10 |
cis-csc: 11,14,3,9
|
|
|
0d5c10 |
|
|
|
0d5c10 |
ocil: '{{{ ocil_service_disabled(service="smartd") }}}'
|
|
|
0d5c10 |
+
|
|
|
0d5c10 |
+platform: machine
|
|
|
0d5c10 |
diff --git a/linux_os/guide/services/base/service_sysstat_disabled/rule.yml b/linux_os/guide/services/base/service_sysstat_disabled/rule.yml
|
|
|
0d5c10 |
index 33378cab86..2e62cab258 100644
|
|
|
0d5c10 |
--- a/linux_os/guide/services/base/service_sysstat_disabled/rule.yml
|
|
|
0d5c10 |
+++ b/linux_os/guide/services/base/service_sysstat_disabled/rule.yml
|
|
|
0d5c10 |
@@ -32,3 +32,5 @@ references:
|
|
|
0d5c10 |
cis-csc: 11,14,3,9
|
|
|
0d5c10 |
|
|
|
0d5c10 |
ocil: '{{{ ocil_service_disabled(service="sysstat") }}}'
|
|
|
0d5c10 |
+
|
|
|
0d5c10 |
+platform: machine
|
|
|
0d5c10 |
diff --git a/linux_os/guide/services/cron_and_at/service_atd_disabled/rule.yml b/linux_os/guide/services/cron_and_at/service_atd_disabled/rule.yml
|
|
|
0d5c10 |
index 7b960f517d..71dab756f2 100644
|
|
|
0d5c10 |
--- a/linux_os/guide/services/cron_and_at/service_atd_disabled/rule.yml
|
|
|
0d5c10 |
+++ b/linux_os/guide/services/cron_and_at/service_atd_disabled/rule.yml
|
|
|
0d5c10 |
@@ -38,3 +38,5 @@ references:
|
|
|
0d5c10 |
cis-csc: 11,14,3,9
|
|
|
0d5c10 |
|
|
|
0d5c10 |
ocil: '{{{ ocil_service_disabled(service="atd") }}}'
|
|
|
0d5c10 |
+
|
|
|
0d5c10 |
+platform: machine
|
|
|
0d5c10 |
diff --git a/linux_os/guide/services/dhcp/disabling_dhcp_server/service_dhcpd_disabled/rule.yml b/linux_os/guide/services/dhcp/disabling_dhcp_server/service_dhcpd_disabled/rule.yml
|
|
|
0d5c10 |
index af16c87fff..bb0b895d93 100644
|
|
|
0d5c10 |
--- a/linux_os/guide/services/dhcp/disabling_dhcp_server/service_dhcpd_disabled/rule.yml
|
|
|
0d5c10 |
+++ b/linux_os/guide/services/dhcp/disabling_dhcp_server/service_dhcpd_disabled/rule.yml
|
|
|
0d5c10 |
@@ -32,3 +32,5 @@ references:
|
|
|
0d5c10 |
cis-csc: 11,14,3,9
|
|
|
0d5c10 |
|
|
|
0d5c10 |
ocil: '{{{ ocil_service_disabled(service="dhcpd") }}}'
|
|
|
0d5c10 |
+
|
|
|
0d5c10 |
+platform: machine
|
|
|
0d5c10 |
diff --git a/linux_os/guide/services/dns/disabling_dns_server/service_named_disabled/rule.yml b/linux_os/guide/services/dns/disabling_dns_server/service_named_disabled/rule.yml
|
|
|
0d5c10 |
index f47b4c29ee..d69cb94bd2 100644
|
|
|
0d5c10 |
--- a/linux_os/guide/services/dns/disabling_dns_server/service_named_disabled/rule.yml
|
|
|
0d5c10 |
+++ b/linux_os/guide/services/dns/disabling_dns_server/service_named_disabled/rule.yml
|
|
|
0d5c10 |
@@ -28,3 +28,5 @@ references:
|
|
|
0d5c10 |
cis-csc: 11,14,3,9
|
|
|
0d5c10 |
|
|
|
0d5c10 |
ocil: '{{{ ocil_service_disabled(service="named") }}}'
|
|
|
0d5c10 |
+
|
|
|
0d5c10 |
+platform: machine
|
|
|
0d5c10 |
diff --git a/linux_os/guide/services/ftp/disabling_vsftpd/service_vsftpd_disabled/rule.yml b/linux_os/guide/services/ftp/disabling_vsftpd/service_vsftpd_disabled/rule.yml
|
|
|
0d5c10 |
index ce7c66175d..721572fd1b 100644
|
|
|
0d5c10 |
--- a/linux_os/guide/services/ftp/disabling_vsftpd/service_vsftpd_disabled/rule.yml
|
|
|
0d5c10 |
+++ b/linux_os/guide/services/ftp/disabling_vsftpd/service_vsftpd_disabled/rule.yml
|
|
|
0d5c10 |
@@ -30,3 +30,5 @@ references:
|
|
|
0d5c10 |
cis-csc: 11,14,3,9
|
|
|
0d5c10 |
|
|
|
0d5c10 |
ocil: '{{{ ocil_service_disabled(service="vsftpd") }}}'
|
|
|
0d5c10 |
+
|
|
|
0d5c10 |
+platform: machine
|
|
|
0d5c10 |
diff --git a/linux_os/guide/services/http/disabling_httpd/service_httpd_disabled/rule.yml b/linux_os/guide/services/http/disabling_httpd/service_httpd_disabled/rule.yml
|
|
|
0d5c10 |
index de74f1e720..cdec6ac161 100644
|
|
|
0d5c10 |
--- a/linux_os/guide/services/http/disabling_httpd/service_httpd_disabled/rule.yml
|
|
|
0d5c10 |
+++ b/linux_os/guide/services/http/disabling_httpd/service_httpd_disabled/rule.yml
|
|
|
0d5c10 |
@@ -27,3 +27,5 @@ references:
|
|
|
0d5c10 |
cis-csc: 11,14,3,9
|
|
|
0d5c10 |
|
|
|
0d5c10 |
ocil: '{{{ ocil_service_disabled(service="httpd") }}}'
|
|
|
0d5c10 |
+
|
|
|
0d5c10 |
+platform: machine
|
|
|
0d5c10 |
diff --git a/linux_os/guide/services/imap/disabling_dovecot/service_dovecot_disabled/rule.yml b/linux_os/guide/services/imap/disabling_dovecot/service_dovecot_disabled/rule.yml
|
|
|
0d5c10 |
index bd255dc91e..c6d16decf0 100644
|
|
|
0d5c10 |
--- a/linux_os/guide/services/imap/disabling_dovecot/service_dovecot_disabled/rule.yml
|
|
|
0d5c10 |
+++ b/linux_os/guide/services/imap/disabling_dovecot/service_dovecot_disabled/rule.yml
|
|
|
0d5c10 |
@@ -20,3 +20,5 @@ references:
|
|
|
0d5c10 |
cis: 2.2.11
|
|
|
0d5c10 |
|
|
|
0d5c10 |
ocil: '{{{ ocil_service_disabled(service="dovecot") }}}'
|
|
|
0d5c10 |
+
|
|
|
0d5c10 |
+platform: machine
|
|
|
0d5c10 |
diff --git a/linux_os/guide/services/nfs_and_rpc/disabling_nfs/disabling_nfs_services/service_rpcbind_disabled/rule.yml b/linux_os/guide/services/nfs_and_rpc/disabling_nfs/disabling_nfs_services/service_rpcbind_disabled/rule.yml
|
|
|
0d5c10 |
index 0f565ab669..8e716c4890 100644
|
|
|
0d5c10 |
--- a/linux_os/guide/services/nfs_and_rpc/disabling_nfs/disabling_nfs_services/service_rpcbind_disabled/rule.yml
|
|
|
0d5c10 |
+++ b/linux_os/guide/services/nfs_and_rpc/disabling_nfs/disabling_nfs_services/service_rpcbind_disabled/rule.yml
|
|
|
0d5c10 |
@@ -23,3 +23,5 @@ identifiers:
|
|
|
0d5c10 |
|
|
|
0d5c10 |
references:
|
|
|
0d5c10 |
cis: 2.2.7
|
|
|
0d5c10 |
+
|
|
|
0d5c10 |
+platform: machine
|
|
|
0d5c10 |
diff --git a/linux_os/guide/services/nfs_and_rpc/nfs_configuring_clients/disabling_nfsd/service_nfs_disabled/rule.yml b/linux_os/guide/services/nfs_and_rpc/nfs_configuring_clients/disabling_nfsd/service_nfs_disabled/rule.yml
|
|
|
0d5c10 |
index 4da6b1de32..77b9cb19eb 100644
|
|
|
0d5c10 |
--- a/linux_os/guide/services/nfs_and_rpc/nfs_configuring_clients/disabling_nfsd/service_nfs_disabled/rule.yml
|
|
|
0d5c10 |
+++ b/linux_os/guide/services/nfs_and_rpc/nfs_configuring_clients/disabling_nfsd/service_nfs_disabled/rule.yml
|
|
|
0d5c10 |
@@ -31,3 +31,5 @@ references:
|
|
|
0d5c10 |
ocil_clause: 'it does not'
|
|
|
0d5c10 |
|
|
|
0d5c10 |
ocil: '{{{ ocil_service_disabled(service="nfs") }}}'
|
|
|
0d5c10 |
+
|
|
|
0d5c10 |
+platform: machine
|
|
|
0d5c10 |
diff --git a/linux_os/guide/services/nfs_and_rpc/nfs_configuring_clients/disabling_nfsd/service_rpcsvcgssd_disabled/rule.yml b/linux_os/guide/services/nfs_and_rpc/nfs_configuring_clients/disabling_nfsd/service_rpcsvcgssd_disabled/rule.yml
|
|
|
0d5c10 |
index dfa0d0a8c7..e8d3a81270 100644
|
|
|
0d5c10 |
--- a/linux_os/guide/services/nfs_and_rpc/nfs_configuring_clients/disabling_nfsd/service_rpcsvcgssd_disabled/rule.yml
|
|
|
0d5c10 |
+++ b/linux_os/guide/services/nfs_and_rpc/nfs_configuring_clients/disabling_nfsd/service_rpcsvcgssd_disabled/rule.yml
|
|
|
0d5c10 |
@@ -20,3 +20,5 @@ identifiers:
|
|
|
0d5c10 |
cce@rhel7: 80238-9
|
|
|
0d5c10 |
|
|
|
0d5c10 |
ocil: '{{{ ocil_service_disabled(service="rpcsvcgssd") }}}'
|
|
|
0d5c10 |
+
|
|
|
0d5c10 |
+platform: machine
|
|
|
0d5c10 |
diff --git a/linux_os/guide/services/obsolete/inetd_and_xinetd/service_xinetd_disabled/rule.yml b/linux_os/guide/services/obsolete/inetd_and_xinetd/service_xinetd_disabled/rule.yml
|
|
|
0d5c10 |
index 2b224eec65..e86a1620ef 100644
|
|
|
0d5c10 |
--- a/linux_os/guide/services/obsolete/inetd_and_xinetd/service_xinetd_disabled/rule.yml
|
|
|
0d5c10 |
+++ b/linux_os/guide/services/obsolete/inetd_and_xinetd/service_xinetd_disabled/rule.yml
|
|
|
0d5c10 |
@@ -38,3 +38,5 @@ ocil: |-
|
|
|
0d5c10 |
If network services are using the xinetd service, this is not applicable.
|
|
|
0d5c10 |
|
|
|
0d5c10 |
{{{ ocil_service_disabled(service="xinetd") }}}
|
|
|
0d5c10 |
+
|
|
|
0d5c10 |
+platform: machine
|
|
|
0d5c10 |
diff --git a/linux_os/guide/services/obsolete/nis/service_ypbind_disabled/rule.yml b/linux_os/guide/services/obsolete/nis/service_ypbind_disabled/rule.yml
|
|
|
0d5c10 |
index 8020867c28..9444832e16 100644
|
|
|
0d5c10 |
--- a/linux_os/guide/services/obsolete/nis/service_ypbind_disabled/rule.yml
|
|
|
0d5c10 |
+++ b/linux_os/guide/services/obsolete/nis/service_ypbind_disabled/rule.yml
|
|
|
0d5c10 |
@@ -34,3 +34,5 @@ references:
|
|
|
0d5c10 |
cis-csc: 11,12,14,15,3,8,9
|
|
|
0d5c10 |
|
|
|
0d5c10 |
ocil: '{{{ ocil_service_disabled(service="ypbind") }}}'
|
|
|
0d5c10 |
+
|
|
|
0d5c10 |
+platform: machine
|
|
|
0d5c10 |
diff --git a/linux_os/guide/services/obsolete/r_services/service_rexec_disabled/rule.yml b/linux_os/guide/services/obsolete/r_services/service_rexec_disabled/rule.yml
|
|
|
0d5c10 |
index 847304d1fc..65d6cc7a36 100644
|
|
|
0d5c10 |
--- a/linux_os/guide/services/obsolete/r_services/service_rexec_disabled/rule.yml
|
|
|
0d5c10 |
+++ b/linux_os/guide/services/obsolete/r_services/service_rexec_disabled/rule.yml
|
|
|
0d5c10 |
@@ -39,3 +39,5 @@ references:
|
|
|
0d5c10 |
cis-csc: 11,12,14,15,3,8,9
|
|
|
0d5c10 |
|
|
|
0d5c10 |
{{{ complete_ocil_entry_socket_and_service_disabled("rexec") }}}
|
|
|
0d5c10 |
+
|
|
|
0d5c10 |
+platform: machine
|
|
|
0d5c10 |
diff --git a/linux_os/guide/services/obsolete/r_services/service_rlogin_disabled/rule.yml b/linux_os/guide/services/obsolete/r_services/service_rlogin_disabled/rule.yml
|
|
|
0d5c10 |
index 295c3e6c7a..4864112e97 100644
|
|
|
0d5c10 |
--- a/linux_os/guide/services/obsolete/r_services/service_rlogin_disabled/rule.yml
|
|
|
0d5c10 |
+++ b/linux_os/guide/services/obsolete/r_services/service_rlogin_disabled/rule.yml
|
|
|
0d5c10 |
@@ -40,3 +40,5 @@ references:
|
|
|
0d5c10 |
cis-csc: 1,11,12,14,15,16,3,5,8,9
|
|
|
0d5c10 |
|
|
|
0d5c10 |
{{{ complete_ocil_entry_socket_and_service_disabled("rlogin") }}}
|
|
|
0d5c10 |
+
|
|
|
0d5c10 |
+platform: machine
|
|
|
0d5c10 |
diff --git a/linux_os/guide/services/obsolete/r_services/service_rsh_disabled/rule.yml b/linux_os/guide/services/obsolete/r_services/service_rsh_disabled/rule.yml
|
|
|
0d5c10 |
index 17740862f2..5bd43b0e6e 100644
|
|
|
0d5c10 |
--- a/linux_os/guide/services/obsolete/r_services/service_rsh_disabled/rule.yml
|
|
|
0d5c10 |
+++ b/linux_os/guide/services/obsolete/r_services/service_rsh_disabled/rule.yml
|
|
|
0d5c10 |
@@ -39,3 +39,5 @@ references:
|
|
|
0d5c10 |
cis-csc: 1,11,12,14,15,16,3,5,8,9
|
|
|
0d5c10 |
|
|
|
0d5c10 |
{{{ complete_ocil_entry_socket_and_service_disabled("rsh") }}}
|
|
|
0d5c10 |
+
|
|
|
0d5c10 |
+platform: machine
|
|
|
0d5c10 |
diff --git a/linux_os/guide/services/obsolete/telnet/service_telnet_disabled/rule.yml b/linux_os/guide/services/obsolete/telnet/service_telnet_disabled/rule.yml
|
|
|
0d5c10 |
index 09e6d48a82..b4ca1f46de 100644
|
|
|
0d5c10 |
--- a/linux_os/guide/services/obsolete/telnet/service_telnet_disabled/rule.yml
|
|
|
0d5c10 |
+++ b/linux_os/guide/services/obsolete/telnet/service_telnet_disabled/rule.yml
|
|
|
0d5c10 |
@@ -59,3 +59,5 @@ references:
|
|
|
0d5c10 |
cis-csc: 1,11,12,14,15,16,3,5,8,9
|
|
|
0d5c10 |
|
|
|
0d5c10 |
{{{ complete_ocil_entry_socket_and_service_disabled("telnet") }}}
|
|
|
0d5c10 |
+
|
|
|
0d5c10 |
+platform: machine
|
|
|
0d5c10 |
diff --git a/linux_os/guide/services/obsolete/tftp/service_tftp_disabled/rule.yml b/linux_os/guide/services/obsolete/tftp/service_tftp_disabled/rule.yml
|
|
|
0d5c10 |
index dc94742526..2f1671ef88 100644
|
|
|
0d5c10 |
--- a/linux_os/guide/services/obsolete/tftp/service_tftp_disabled/rule.yml
|
|
|
0d5c10 |
+++ b/linux_os/guide/services/obsolete/tftp/service_tftp_disabled/rule.yml
|
|
|
0d5c10 |
@@ -32,3 +32,5 @@ references:
|
|
|
0d5c10 |
cis-csc: 11,12,14,15,3,8,9
|
|
|
0d5c10 |
|
|
|
0d5c10 |
ocil: '{{{ ocil_service_disabled(service="tftp") }}}'
|
|
|
0d5c10 |
+
|
|
|
0d5c10 |
+platform: machine
|
|
|
0d5c10 |
diff --git a/linux_os/guide/services/printing/service_cups_disabled/rule.yml b/linux_os/guide/services/printing/service_cups_disabled/rule.yml
|
|
|
0d5c10 |
index 5b0cc60bfd..3728484a62 100644
|
|
|
0d5c10 |
--- a/linux_os/guide/services/printing/service_cups_disabled/rule.yml
|
|
|
0d5c10 |
+++ b/linux_os/guide/services/printing/service_cups_disabled/rule.yml
|
|
|
0d5c10 |
@@ -25,3 +25,5 @@ references:
|
|
|
0d5c10 |
cis-csc: 11,14,3,9
|
|
|
0d5c10 |
|
|
|
0d5c10 |
ocil: '{{{ ocil_service_disabled(service="cups") }}}'
|
|
|
0d5c10 |
+
|
|
|
0d5c10 |
+platform: machine
|
|
|
0d5c10 |
diff --git a/linux_os/guide/services/proxy/disabling_squid/service_squid_disabled/rule.yml b/linux_os/guide/services/proxy/disabling_squid/service_squid_disabled/rule.yml
|
|
|
0d5c10 |
index a8c1e00d78..990726e40d 100644
|
|
|
0d5c10 |
--- a/linux_os/guide/services/proxy/disabling_squid/service_squid_disabled/rule.yml
|
|
|
0d5c10 |
+++ b/linux_os/guide/services/proxy/disabling_squid/service_squid_disabled/rule.yml
|
|
|
0d5c10 |
@@ -20,3 +20,5 @@ references:
|
|
|
0d5c10 |
cis: 2.2.13
|
|
|
0d5c10 |
|
|
|
0d5c10 |
ocil: '{{{ ocil_service_disabled(service="squid") }}}'
|
|
|
0d5c10 |
+
|
|
|
0d5c10 |
+platform: machine
|
|
|
0d5c10 |
diff --git a/linux_os/guide/services/routing/disabling_quagga/service_zebra_disabled/rule.yml b/linux_os/guide/services/routing/disabling_quagga/service_zebra_disabled/rule.yml
|
|
|
0d5c10 |
index c3bb80abd8..e9c9a56f77 100644
|
|
|
0d5c10 |
--- a/linux_os/guide/services/routing/disabling_quagga/service_zebra_disabled/rule.yml
|
|
|
0d5c10 |
+++ b/linux_os/guide/services/routing/disabling_quagga/service_zebra_disabled/rule.yml
|
|
|
0d5c10 |
@@ -30,3 +30,5 @@ references:
|
|
|
0d5c10 |
cis-csc: 12,15,8
|
|
|
0d5c10 |
|
|
|
0d5c10 |
ocil: '{{{ ocil_service_disabled(service="zebra") }}}'
|
|
|
0d5c10 |
+
|
|
|
0d5c10 |
+platform: machine
|
|
|
0d5c10 |
diff --git a/linux_os/guide/services/smb/disabling_samba/service_smb_disabled/rule.yml b/linux_os/guide/services/smb/disabling_samba/service_smb_disabled/rule.yml
|
|
|
0d5c10 |
index f00944b9fa..13769d9ff2 100644
|
|
|
0d5c10 |
--- a/linux_os/guide/services/smb/disabling_samba/service_smb_disabled/rule.yml
|
|
|
0d5c10 |
+++ b/linux_os/guide/services/smb/disabling_samba/service_smb_disabled/rule.yml
|
|
|
0d5c10 |
@@ -21,3 +21,5 @@ references:
|
|
|
0d5c10 |
disa: "1436"
|
|
|
0d5c10 |
|
|
|
0d5c10 |
ocil: '{{{ ocil_service_disabled(service="smb") }}}'
|
|
|
0d5c10 |
+
|
|
|
0d5c10 |
+platform: machine
|
|
|
0d5c10 |
diff --git a/linux_os/guide/services/snmp/disabling_snmp_service/service_snmpd_disabled/rule.yml b/linux_os/guide/services/snmp/disabling_snmp_service/service_snmpd_disabled/rule.yml
|
|
|
0d5c10 |
index 64f509be20..96a52bc3c9 100644
|
|
|
0d5c10 |
--- a/linux_os/guide/services/snmp/disabling_snmp_service/service_snmpd_disabled/rule.yml
|
|
|
0d5c10 |
+++ b/linux_os/guide/services/snmp/disabling_snmp_service/service_snmpd_disabled/rule.yml
|
|
|
0d5c10 |
@@ -21,3 +21,5 @@ references:
|
|
|
0d5c10 |
cis: 2.2.14
|
|
|
0d5c10 |
|
|
|
0d5c10 |
ocil: '{{{ ocil_service_disabled(service="snmpd") }}}'
|
|
|
0d5c10 |
+
|
|
|
0d5c10 |
+platform: machine
|
|
|
0d5c10 |
diff --git a/linux_os/guide/system/network/network-wireless/wireless_software/service_bluetooth_disabled/rule.yml b/linux_os/guide/system/network/network-wireless/wireless_software/service_bluetooth_disabled/rule.yml
|
|
|
0d5c10 |
index 05b11ecbc1..fb2eeecfc1 100644
|
|
|
0d5c10 |
--- a/linux_os/guide/system/network/network-wireless/wireless_software/service_bluetooth_disabled/rule.yml
|
|
|
0d5c10 |
+++ b/linux_os/guide/system/network/network-wireless/wireless_software/service_bluetooth_disabled/rule.yml
|
|
|
0d5c10 |
@@ -34,3 +34,5 @@ references:
|
|
|
0d5c10 |
cis-csc: 11,12,14,15,3,8,9
|
|
|
0d5c10 |
|
|
|
0d5c10 |
ocil: '{{{ ocil_service_disabled(service="bluetooth") }}}'
|
|
|
0d5c10 |
+
|
|
|
0d5c10 |
+platform: machine
|
|
|
0d5c10 |
diff --git a/linux_os/guide/system/permissions/mounting/service_autofs_disabled/rule.yml b/linux_os/guide/system/permissions/mounting/service_autofs_disabled/rule.yml
|
|
|
0d5c10 |
index 9de5b25a74..fa4c8e1a48 100644
|
|
|
0d5c10 |
--- a/linux_os/guide/system/permissions/mounting/service_autofs_disabled/rule.yml
|
|
|
0d5c10 |
+++ b/linux_os/guide/system/permissions/mounting/service_autofs_disabled/rule.yml
|
|
|
0d5c10 |
@@ -47,3 +47,5 @@ references:
|
|
|
0d5c10 |
cis-csc: 1,12,15,16,5
|
|
|
0d5c10 |
|
|
|
0d5c10 |
ocil: '{{{ ocil_service_disabled(service="autofs") }}}'
|
|
|
0d5c10 |
+
|
|
|
0d5c10 |
+platform: machine
|